Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/e2b494-c0b2-43f4-bc4d-a6f4f0f4f72d/1/cf7NfPvpX6ZcUIbTtLmWxyr2Pu4.roa
File: cf7NfPvpX6ZcUIbTtLmWxyr2Pu4.roa (raw, json)
Hash identifier: MEJeukAlI1DgNCGZM4STcgqoSGlDLiGA6kF7um7JBBQ=
Subject key identifier: 71:FE:CD:7C:FB:E9:5F:A6:5C:50:86:D3:B4:B9:96:C7:2A:F6:3E:EE
Certificate issuer: /CN=afb04b1355e5d6ed2223249630ac8b9f7439aee1
Certificate serial: 0C4F2550
Authority key identifier: AF:B0:4B:13:55:E5:D6:ED:22:23:24:96:30:AC:8B:9F:74:39:AE:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r7BLE1Xl1u0iIySWMKyLn3Q5ruE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/e2b494-c0b2-43f4-bc4d-a6f4f0f4f72d/1/cf7NfPvpX6ZcUIbTtLmWxyr2Pu4.roa
Signing time: Sat 01 Jan 2022 13:07:36 +0000
ROA not before: Sat 01 Jan 2022 13:07:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50304
IP address blocks: 185.247.12.0/22 maxlen: 22
2a0d:b680::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 206513488 (0xc4f2550)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afb04b1355e5d6ed2223249630ac8b9f7439aee1
Validity
Not Before: Jan 1 13:07:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=71fecd7cfbe95fa65c5086d3b4b996c72af63eee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:80:86:fe:be:aa:d2:77:27:8a:3b:a9:a7:c2:
a9:dc:84:11:79:9a:ec:b5:06:ee:b0:b0:4e:31:14:
12:b4:13:60:b1:66:5c:6d:1a:6f:aa:c3:4e:e9:58:
ff:df:6a:2e:08:96:c3:52:02:73:49:17:af:29:ed:
b2:a8:83:c7:e6:b4:66:42:68:68:23:a4:14:d1:aa:
28:f3:ad:1e:f4:69:a7:6a:35:fc:f6:64:aa:cf:eb:
be:5e:47:7f:b1:5d:16:50:d1:84:c2:33:92:b7:b7:
81:14:01:6c:4b:b0:74:5e:3f:33:e1:92:40:42:d6:
0c:57:cd:1f:97:71:d1:57:69:4d:42:d2:d8:3f:2f:
50:85:e9:29:cb:38:fa:73:35:35:13:45:4d:c4:68:
ac:54:10:81:32:6b:53:cc:9c:6f:b1:9d:1e:41:df:
db:b4:a7:c8:e0:aa:93:75:39:fa:ae:f4:ef:44:64:
d0:7c:b3:c5:0a:01:a4:bf:cb:f8:99:17:92:34:79:
33:c2:42:46:84:ed:07:3c:33:4e:fc:bd:1c:ff:d8:
0d:29:e3:d9:f3:85:4c:fd:a6:bb:bf:e1:9a:71:ba:
5f:ce:81:49:16:bf:fa:16:0d:b9:62:22:f1:48:39:
ed:03:cd:32:f5:2e:9e:b6:12:26:90:6d:7c:ea:89:
fb:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:FE:CD:7C:FB:E9:5F:A6:5C:50:86:D3:B4:B9:96:C7:2A:F6:3E:EE
X509v3 Authority Key Identifier:
keyid:AF:B0:4B:13:55:E5:D6:ED:22:23:24:96:30:AC:8B:9F:74:39:AE:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r7BLE1Xl1u0iIySWMKyLn3Q5ruE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/e2b494-c0b2-43f4-bc4d-a6f4f0f4f72d/1/cf7NfPvpX6ZcUIbTtLmWxyr2Pu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/e2b494-c0b2-43f4-bc4d-a6f4f0f4f72d/1/r7BLE1Xl1u0iIySWMKyLn3Q5ruE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.247.12.0/22
IPv6:
2a0d:b680::/29
Signature Algorithm: sha256WithRSAEncryption
13:b5:88:d3:0c:76:38:de:fb:9e:c9:3a:df:35:62:c3:af:15:
85:b0:13:09:98:eb:62:1c:08:83:03:8f:64:c6:4d:98:c9:ca:
0f:fe:c8:cb:45:23:cc:32:65:7f:d6:80:39:4c:bb:6e:29:38:
ad:5c:d1:80:07:15:41:98:e5:0c:33:56:31:2c:72:cf:46:40:
e8:29:fe:0c:25:ee:9e:7f:46:9b:71:22:3e:6c:5d:a1:9e:4d:
a7:bc:b5:87:3b:d1:ca:8d:96:4a:a6:a9:9d:bb:4a:e8:d4:20:
e0:f8:92:00:76:a0:9a:8a:51:ed:ce:bc:e1:c0:f8:30:8e:8d:
9b:79:33:4d:56:2b:27:31:51:64:12:4e:f1:1b:dd:6d:47:7f:
6b:23:02:85:5e:d9:d4:ae:78:01:99:6f:59:db:f9:84:29:55:
9d:d6:4c:41:f1:23:ec:5a:1c:23:9f:ed:42:66:85:f8:04:d7:
e6:ba:4a:19:4c:47:f8:47:31:38:02:95:23:40:fc:d0:4b:3f:
ce:f9:72:48:f5:07:27:8d:5d:16:fd:91:16:04:47:51:6f:7f:
62:92:d8:c1:ee:91:37:da:7a:8a:3e:11:6d:c4:79:44:71:fe:
2e:08:91:00:5a:63:85:c4:b3:1c:b0:fa:be:21:eb:8b:45:20:
29:26:3d:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:52:40 2025 by rpki-client